C5-DEC CAD traceability tooling reports:
Specification browser
Traceability statistics
Traceability graph
Tree Structure:
MRS │ ├── HARC │ └── SRS │ ├── TST │ │ │ └── TRP │ └── LARC │ └── SWD
Published Documents:
HARC
LARC
MRS
SRS
SWD
TRP
TST
Item Traceability:
MRS
HARC
SRS
TST
TRP
LARC
SWD
MRS-001 Open-Source Release
MRS-002 Command & Control
HARC-001 ADBox subsystem
MRS-002 Command & Control
HARC-003 IDPS-ESCAPE context
MRS-002 Command & Control
SRS-001 Centralized C&C Deployment
TST-020 Wazuh installation in a containerized environment
MRS-002 Command & Control
SRS-002 Endpoint Status Monitoring
MRS-003 Agent Data Centralization
HARC-003 IDPS-ESCAPE context
MRS-004 Multivariate Anomaly Detection
HARC-001 ADBox subsystem
MRS-004 Multivariate Anomaly Detection
HARC-002 ADBox architecture
MRS-004 Multivariate Anomaly Detection
HARC-003 IDPS-ESCAPE context
MRS-004 Multivariate Anomaly Detection
SRS-037 Anomaly-Based NIDS
TST-015 ADBox use case 5 with a Wazuh connection
TRP-013 TCER: ADBox use case 5 with a Wazuh connection
MRS-004 Multivariate Anomaly Detection
SRS-037 Anomaly-Based NIDS
TST-016 ADBox use case 5 without a Wazuh connection
TRP-014 TCER: ADBox use case 5 without a Wazuh connection
MRS-004 Multivariate Anomaly Detection
SRS-040 Data Management Subpackage
LARC-010 ADBox data manager
SWD-009 ADBox data managers
MRS-004 Multivariate Anomaly Detection
SRS-041 Time Management Package
LARC-011 ADBox TimeManager
SWD-012 ADBox TimeManager
MRS-005 Host-based Intrusion Detection
HARC-003 IDPS-ESCAPE context
MRS-005 Host-based Intrusion Detection
SRS-003 HIDS Agent Deployment
TST-021 Wazuh agent installation and enrollment: the local machine
MRS-005 Host-based Intrusion Detection
SRS-004 HIDS Agent Management
TST-023 Wazuh agent deletion and uninstallation
MRS-005 Host-based Intrusion Detection
SRS-004 HIDS Agent Management
TST-024 Wazuh agent unenrollment
MRS-006 NIDS Support
HARC-003 IDPS-ESCAPE context
MRS-006 NIDS Support
SRS-005 Network Monitoring Control
MRS-007 Intrusion Prevention
HARC-003 IDPS-ESCAPE context
MRS-007 Intrusion Prevention
HARC-004 RADAR architecture
MRS-007 Intrusion Prevention
HARC-005 RADAR Automated Test Framework architecture
MRS-007 Intrusion Prevention
HARC-006 RADAR deployment: Remote Agent and Remote Manager mode
MRS-007 Intrusion Prevention
HARC-007 RADAR deployment: Remote Agent and Local Manager mode
MRS-007 Intrusion Prevention
HARC-008 RADAR deployment: Local Agent and Local Manager mode
MRS-007 Intrusion Prevention
HARC-012 RADAR risk engine architecture
MRS-007 Intrusion Prevention
HARC-013 RADAR Ansible automation architecture
MRS-007 Intrusion Prevention
HARC-014 RADAR helper architecture
MRS-007 Intrusion Prevention
HARC-015 RADAR adversarial ML defense architecture
MRS-007 Intrusion Prevention
SRS-006 Centralized NIDPS Prevention
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-015 RADAR scenario setup flow
SWD-018 RATF: ingestion phase
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-015 RADAR scenario setup flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-016 RADAR active response flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-016 RADAR active response flow
SWD-020 RATF: simulation phase
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-016 RADAR active response flow
SWD-021 RATF: evaluation phase
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-017 RADAR integration with Opensearch modules
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-018 RADAR logical flow
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-022 RADAR detector creation workflow
SWD-028 RADAR detector module design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-023 RADAR monitor and webhook workflow
SWD-029 RADAR monitor and webhook module design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-023 RADAR monitor and webhook workflow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-027 RADAR data ingestion pipeline
SWD-033 RADAR data ingestion module design
MRS-007 Intrusion Prevention
SRS-050 RADAR scenario: DLP1 - insider data exfiltration
LARC-027 RADAR data ingestion pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
TST-042 Build suspicious login
TRP-031 TCER: Build suspicious login
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-015 RADAR scenario setup flow
SWD-018 RATF: ingestion phase
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-015 RADAR scenario setup flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-016 RADAR active response flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-016 RADAR active response flow
SWD-020 RATF: simulation phase
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-016 RADAR active response flow
SWD-021 RATF: evaluation phase
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-017 RADAR integration with Opensearch modules
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-018 RADAR logical flow
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-022 RADAR detector creation workflow
SWD-028 RADAR detector module design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-023 RADAR monitor and webhook workflow
SWD-029 RADAR monitor and webhook module design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-023 RADAR monitor and webhook workflow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-025 RADAR helper enrichment pipeline
SWD-030 RADAR helper module class design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-025 RADAR helper enrichment pipeline
SWD-032 RADAR configuration management design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-027 RADAR data ingestion pipeline
SWD-033 RADAR data ingestion module design
MRS-007 Intrusion Prevention
SRS-051 RADAR scenario: suspicious login
LARC-027 RADAR data ingestion pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-015 RADAR scenario setup flow
SWD-018 RATF: ingestion phase
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-015 RADAR scenario setup flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-016 RADAR active response flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-016 RADAR active response flow
SWD-020 RATF: simulation phase
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-016 RADAR active response flow
SWD-021 RATF: evaluation phase
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-017 RADAR integration with Opensearch modules
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-018 RADAR logical flow
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-022 RADAR detector creation workflow
SWD-028 RADAR detector module design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-023 RADAR monitor and webhook workflow
SWD-029 RADAR monitor and webhook module design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-023 RADAR monitor and webhook workflow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-027 RADAR data ingestion pipeline
SWD-033 RADAR data ingestion module design
MRS-007 Intrusion Prevention
SRS-052 RADAR scenario: DDoS detection
LARC-027 RADAR data ingestion pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-015 RADAR scenario setup flow
SWD-018 RATF: ingestion phase
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-015 RADAR scenario setup flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-016 RADAR active response flow
SWD-019 RATF: setup phase
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-016 RADAR active response flow
SWD-020 RATF: simulation phase
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-016 RADAR active response flow
SWD-021 RATF: evaluation phase
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-017 RADAR integration with Opensearch modules
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-018 RADAR logical flow
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-053 RADAR scenario: malware C2 beaconing
LARC-028 RADAR GeoIP detection scenario flow
SWD-034 RADAR custom rule and decoder patterns
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-017 RADAR integration with Opensearch modules
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-029 RADAR log volume detection scenario flow
SWD-034 RADAR custom rule and decoder patterns
MRS-007 Intrusion Prevention
SRS-054 RADAR automated test framework
LARC-029 RADAR log volume detection scenario flow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
TST-043 Build non-whitelist GeoIP detection
TRP-032 TCER: Build non-whitelist GeoIP detection
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-025 RADAR helper enrichment pipeline
SWD-030 RADAR helper module class design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-025 RADAR helper enrichment pipeline
SWD-032 RADAR configuration management design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-055 RADAR scenario: Geo-IP AC via whitelisting
LARC-028 RADAR GeoIP detection scenario flow
SWD-034 RADAR custom rule and decoder patterns
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
TST-044 Build log volume abnormal growth
TRP-033 TCER: Build log volume abnormal growth
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
TST-045 Run RADAR for log volume abnormal growth
TRP-034 TCER: Run RADAR for log volume abnormal growth
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-022 RADAR detector creation workflow
SWD-028 RADAR detector module design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-023 RADAR monitor and webhook workflow
SWD-029 RADAR monitor and webhook module design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-023 RADAR monitor and webhook workflow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-027 RADAR data ingestion pipeline
SWD-033 RADAR data ingestion module design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-027 RADAR data ingestion pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-029 RADAR log volume detection scenario flow
SWD-034 RADAR custom rule and decoder patterns
MRS-007 Intrusion Prevention
SRS-056 RADAR scenario: log size change
LARC-029 RADAR log volume detection scenario flow
SWD-035 RADAR webhook service design
MRS-007 Intrusion Prevention
SRS-057 RADAR scenario: ransomware
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-057 RADAR scenario: ransomware
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-057 RADAR scenario: ransomware
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-057 RADAR scenario: ransomware
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-057 RADAR scenario: ransomware
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-058 RADAR scenario: DLP2 - network data exfiltration
LARC-021 RADAR risk engine calculation flow
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-058 RADAR scenario: DLP2 - network data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-026 RADAR risk engine implementation design
MRS-007 Intrusion Prevention
SRS-058 RADAR scenario: DLP2 - network data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-027 RADAR active response script design
MRS-007 Intrusion Prevention
SRS-058 RADAR scenario: DLP2 - network data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-037 RADAR-SONAR integration design
MRS-007 Intrusion Prevention
SRS-058 RADAR scenario: DLP2 - network data exfiltration
LARC-026 RADAR active response decision pipeline
SWD-038 RADAR-DECIPHER FlowIntel integration design
MRS-007 Intrusion Prevention
SRS-059 RADAR Scenario Simulation Framework
TST-046 DECIPHER-RADAR detection validation for Suspicious login
TRP-035 TCER: DECIPHER-RADAR detection validation for suspicious login
MRS-007 Intrusion Prevention
SRS-059 RADAR Scenario Simulation Framework
TST-047 Detection validation for GeoIP detection
TRP-036 TCER: Detection validation for GeoIP detection
MRS-007 Intrusion Prevention
SRS-059 RADAR Scenario Simulation Framework
TST-048 Detection validation for Log volume abnormal growth
TRP-037 TCER: Detection validation for log volume abnormal growth
MRS-007 Intrusion Prevention
SRS-061 RADAR: Tiered active response logic
TST-042 Build suspicious login
TRP-031 TCER: Build suspicious login
MRS-007 Intrusion Prevention
SRS-061 RADAR: Tiered active response logic
TST-043 Build non-whitelist GeoIP detection
TRP-032 TCER: Build non-whitelist GeoIP detection
MRS-007 Intrusion Prevention
SRS-061 RADAR: Tiered active response logic
TST-044 Build log volume abnormal growth
TRP-033 TCER: Build log volume abnormal growth
MRS-007 Intrusion Prevention
SRS-061 RADAR: Tiered active response logic
TST-045 Run RADAR for log volume abnormal growth
TRP-034 TCER: Run RADAR for log volume abnormal growth
MRS-008 Network Capture Forwarding
HARC-003 IDPS-ESCAPE context
MRS-008 Network Capture Forwarding
SRS-007 Raw Traffic Capture
TST-026 Port mirroring for remote machines
MRS-009 Docker Deployment Option
SRS-008 Dockerized NIDS Deployment
TST-019 Suricata installation in a containerized environment
MRS-011 Signature-based Host IDS
HARC-003 IDPS-ESCAPE context
MRS-011 Signature-based Host IDS
SRS-009 Signature-Based HIDS
MRS-012 XDR & SIEM Integration
HARC-003 IDPS-ESCAPE context
MRS-012 XDR & SIEM Integration
HARC-004 RADAR architecture
MRS-012 XDR & SIEM Integration
HARC-013 RADAR Ansible automation architecture
MRS-012 XDR & SIEM Integration
SRS-010 Centralized Threat Management
TST-025 Suricata and Wazuh Integration
MRS-013 Visual Dashboard
HARC-003 IDPS-ESCAPE context
MRS-013 Visual Dashboard
SRS-011 Network Event Visualization
TST-027 Traffic monitoring on Wazuh (local)
MRS-013 Visual Dashboard
SRS-011 Network Event Visualization
TST-028 Traffic monitoring on Wazuh (remote)
MRS-013 Visual Dashboard
SRS-011 Network Event Visualization
TST-032 Wazuh filters using the Wazuh Dashboard
MRS-013 Visual Dashboard
SRS-012 Host Event Visualization
MRS-013 Visual Dashboard
SRS-013 HIDS Agent Status Panel
MRS-014 Data Extraction API
SRS-014 Event Decoding & Transformation
MRS-014 Data Extraction API
SRS-015 Custom Rule Support
MRS-015 Software Configuration Management
SRS-016 Indexer Credential Management
TST-029 Changing password for Wazuh indexer users
MRS-015 Software Configuration Management
SRS-016 Indexer Credential Management
TST-030 Changing password for Wazuh API users
MRS-015 Software Configuration Management
SRS-017 Custom Data Source
TST-034 ADBox set up indexer host address
MRS-015 Software Configuration Management
SRS-018 ML Hyperparameter Tuning
LARC-012 ADBox ConfigManager
SWD-014 ADBox config managers
MRS-015 Software Configuration Management
SRS-019 Datatype Transformation Map
MRS-015 Software Configuration Management
SRS-020 Ingestion Field Update
MRS-015 Software Configuration Management
SRS-021 Default Use Case Update
LARC-012 ADBox ConfigManager
SWD-014 ADBox config managers
MRS-015 Software Configuration Management
SRS-022 Indexer Credentials Update
TST-035 ADBox change indexer credentials
MRS-016 Agent (De)Registration
SRS-023 Agent Registration Process
TST-022 Wazuh agent installation and enrollment: remote machine
MRS-017 Monitoring Frontend
HARC-003 IDPS-ESCAPE context
MRS-017 Monitoring Frontend
SRS-043 AD Data Visualization
TST-033 ADBox Wazuh integration Dashboard
MRS-018 Data Management Subsystem
HARC-003 IDPS-ESCAPE context
MRS-018 Data Management Subsystem
SRS-024 Event Querying Capability
TST-031 Wazuh filters using the RESTful API
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
TST-018 ADBox Create detector data stream
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-013 ADBox RequestResponseHandler
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-014 ADBox Shipper
SWD-015 ADBox Shipper and Template Handler
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-014 ADBox Shipper
SWD-016 ADBox shipping of prediction data
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-014 ADBox Shipper
SWD-017 ADBox creation of a detector stream
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-020 SONAR detection pipeline sequence
SWD-022 SONAR class structure and relationships
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-020 SONAR detection pipeline sequence
SWD-023 SONAR feature engineering design
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-020 SONAR detection pipeline sequence
SWD-024 SONAR data shipping design
MRS-018 Data Management Subsystem
SRS-042 Prediction Shipping Feature
LARC-020 SONAR detection pipeline sequence
SWD-025 SONAR debug mode design
MRS-019 3rd-Party Open-source Signature-based NIDS
HARC-003 IDPS-ESCAPE context
MRS-019 3rd-Party Open-source Signature-based NIDS
HARC-015 RADAR adversarial ML defense architecture
MRS-020 Platform Independence
HARC-003 IDPS-ESCAPE context
MRS-020 Platform Independence
SRS-044 Platform-Independent Deployment
TST-003 Install ADBox as dev container
TRP-003 TCER: Install ADBox as dev container
MRS-020 Platform Independence
SRS-044 Platform-Independent Deployment
TST-003 Install ADBox as dev container
TRP-004 TCER: Install ADBox as dev container
MRS-020 Platform Independence
SRS-044 Platform-Independent Deployment
TST-003 Install ADBox as dev container
TRP-020 TCER: Install ADBox as dev container
MRS-020 Platform Independence
SRS-044 Platform-Independent Deployment
TST-003 Install ADBox as dev container
TRP-024 TCER: ADBox in dev container
MRS-020 Platform Independence
SRS-046 Cross-platform SONAR deployment
TST-001 Deploy ADBox via Docker and shell scripts
TRP-001 TCER: Deploy ADBox via Docker and shell scripts
MRS-020 Platform Independence
SRS-046 Cross-platform SONAR deployment
TST-001 Deploy ADBox via Docker and shell scripts
TRP-023 TCER: ADBox deployment
MRS-021 IaC Deployment
SRS-049 Anomaly Shipping to Indexer
TST-017 ADBox shipping install
TRP-022 TCER: ADBox shipping install
MRS-022 Network Endpoint Monitoring
HARC-003 IDPS-ESCAPE context
MRS-023 MITRE ATT&CK Mapping
SRS-025 MITRE ATT&CK Mapping
TST-036 Map a detected event to MITRE ATT&CKS
MRS-024 TIP API Integration
MRS-025 Threat Detection API
SRS-026 TIP Data Export
MRS-026 C5-DEC Development Model
SRS-045 High-Level Architecture Overview
TST-040 Visualize IDPS-ESCAPE high level architecture
MRS-027 Secure Inter-Component Communication
MRS-028 Standardized AD Input
MRS-029 Data Collection Scalability
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-007 ADBox use case 1 with a Wazuh connection
TRP-008 TCER: ADBox use case 1 with a Wazuh connection
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-008 ADBox use case 1 without a Wazuh connection
TRP-009 TCER: ADBox use case 1 without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-008 ADBox use case 1 without a Wazuh connection
TRP-018 TCER: ADBox use case 1 without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-011 ADBox use case 3 with a Wazuh connection
TRP-011 TCER: ADBox use case 3 with a Wazuh connection
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-011 ADBox use case 3 with a Wazuh connection
TRP-028 TCER: ADBox UC scenario 3 with Wazuh
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
TST-012 ADBox use case 3 without a Wazuh connection
TRP-016 TCER: ADBox use case 3 without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-008 ADBox batch and real-time prediction flow
SWD-002 ADBox prediction pipeline
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-008 ADBox batch and real-time prediction flow
SWD-013 ADBox Prediction pipeline's inner body
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-022 SONAR class structure and relationships
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-023 SONAR feature engineering design
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-024 SONAR data shipping design
MRS-030 Deep Learning Technique
SRS-027 ML-Based Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-025 SONAR debug mode design
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
TST-013 ADBox use case 4 with a Wazuh connection
TRP-012 TCER: ADBox use case 4 with a Wazuh connection
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
TST-014 ADBox use case 4 without a Wazuh connection
TRP-015 TCER: ADBox use case 4 without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
LARC-001 ADBox training pipeline flow
SWD-001 ADBox training pipeline
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
LARC-019 SONAR training pipeline sequence
SWD-022 SONAR class structure and relationships
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
LARC-019 SONAR training pipeline sequence
SWD-023 SONAR feature engineering design
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
LARC-019 SONAR training pipeline sequence
SWD-024 SONAR data shipping design
MRS-030 Deep Learning Technique
SRS-038 Joint Host-Network Training
LARC-019 SONAR training pipeline sequence
SWD-025 SONAR debug mode design
MRS-030 Deep Learning Technique
SRS-047 Interactive Use Case Builder
TST-004 Run ADBox console
TRP-005 TCER: Run ADBox console
MRS-030 Deep Learning Technique
SRS-047 Interactive Use Case Builder
TST-004 Run ADBox console
TRP-025 TCER: ADBox console
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
TST-005 Run ADBox in default mode with a Wazuh connection
TRP-006 TCER: Run ADBox in default mode with a Wazuh connection
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
TST-005 Run ADBox in default mode with a Wazuh connection
TRP-026 TCER: ADBox in default mode with Wazuh
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
TST-006 Run ADBox in default mode without a Wazuh connection
TRP-007 TCER: Run ADBox in default mode without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
TST-006 Run ADBox in default mode without a Wazuh connection
TRP-019 TCER: Run ADBox in default mode without a Wazuh connection
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
LARC-019 SONAR training pipeline sequence
SWD-022 SONAR class structure and relationships
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
LARC-019 SONAR training pipeline sequence
SWD-023 SONAR feature engineering design
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
LARC-019 SONAR training pipeline sequence
SWD-024 SONAR data shipping design
MRS-030 Deep Learning Technique
SRS-048 Default Detector Training
LARC-019 SONAR training pipeline sequence
SWD-025 SONAR debug mode design
MRS-031 Multiple ML Techniques
HARC-002 ADBox architecture
MRS-031 Multiple ML Techniques
SRS-028 Algorithm Comparison Feature
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-003 MTAD-GAT training
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-004 MTAD-GAT prediction
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-005 Peak-over-threshold (POT)
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-006 ADBox Predictor score computation
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-007 ADBox MTAD-GAT anomaly prediction
MRS-031 Multiple ML Techniques
SRS-039 Algorithm Selection Option
LARC-009 ADBox machine learning package
SWD-008 ADBox MTAD-GAT Predictor
MRS-032 Host and Network Ingestion
HARC-001 ADBox subsystem
MRS-032 Host and Network Ingestion
HARC-002 ADBox architecture
MRS-032 Host and Network Ingestion
HARC-003 IDPS-ESCAPE context
MRS-032 Host and Network Ingestion
HARC-009 SONAR subsystem context
MRS-032 Host and Network Ingestion
HARC-010 SONAR component architecture
MRS-032 Host and Network Ingestion
HARC-011 SONAR data flow architecture
MRS-032 Host and Network Ingestion
SRS-029 Host & Network Ingestion
LARC-003 ADBox preprocessing flow
SWD-010 ADBox data transformer
MRS-032 Host and Network Ingestion
SRS-029 Host & Network Ingestion
LARC-003 ADBox preprocessing flow
SWD-011 ADBox preprocessing
MRS-033 API Data Retrieval
HARC-001 ADBox subsystem
MRS-033 API Data Retrieval
HARC-002 ADBox architecture
MRS-033 API Data Retrieval
HARC-003 IDPS-ESCAPE context
MRS-034 Standardized AD Output
SRS-030 AD Results Visualization
TST-037 Open prediction file of training data
MRS-034 Standardized AD Output
SRS-031 Training Loss Visualization
TST-038 Visualize train losses
MRS-034 Standardized AD Output
SRS-032 Predicted Anomalies Visualization
TST-039 Open prediction raw outcome
MRS-035 Secure Log Storage
MRS-036 Secure pcap Storage
MRS-037 Multiple Deployment Models
HARC-003 IDPS-ESCAPE context
MRS-037 Multiple Deployment Models
SRS-033 Remote Endpoint Deployment
LARC-004 IDPS-ESCAPE end-point integrated arch.
MRS-037 Multiple Deployment Models
SRS-033 Remote Endpoint Deployment
LARC-005 IDPS-ESCAPE end-point hybrid arch.
MRS-037 Multiple Deployment Models
SRS-033 Remote Endpoint Deployment
LARC-006 IDPS-ESCAPE end-point host-only IDS arch.
MRS-037 Multiple Deployment Models
SRS-033 Remote Endpoint Deployment
LARC-007 IDPS-ESCAPE end-point capture-only arch.
MRS-038 pcap Support
MRS-039 Offline AD
HARC-001 ADBox subsystem
MRS-039 Offline AD
HARC-002 ADBox architecture
MRS-039 Offline AD
HARC-003 IDPS-ESCAPE context
MRS-039 Offline AD
HARC-009 SONAR subsystem context
MRS-039 Offline AD
HARC-010 SONAR component architecture
MRS-039 Offline AD
HARC-011 SONAR data flow architecture
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
TST-009 ADBox use case 2 with a Wazuh connection
TRP-010 TCER: ADBox use case 2 with a Wazuh connection
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
TST-009 ADBox use case 2 with a Wazuh connection
TRP-027 TCER: ADBox UC scenario 2 with Wazuh
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
TST-010 ADBox use case 2 without a Wazuh connection
TRP-017 TCER: ADBox use case 2 without a Wazuh connection
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-002 ADBox historical data prediction pipeline flow
SWD-002 ADBox prediction pipeline
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-002 ADBox historical data prediction pipeline flow
SWD-013 ADBox Prediction pipeline's inner body
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-022 SONAR class structure and relationships
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-023 SONAR feature engineering design
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-024 SONAR data shipping design
MRS-039 Offline AD
SRS-035 Offline Anomaly Detection
LARC-020 SONAR detection pipeline sequence
SWD-025 SONAR debug mode design
MRS-040 Signature-Based NIDS
HARC-003 IDPS-ESCAPE context
MRS-040 Signature-Based NIDS
SRS-036 Custom NIDS Rules
MRS-041 Standalone AD Subsystem
HARC-001 ADBox subsystem
MRS-041 Standalone AD Subsystem
HARC-002 ADBox architecture
MRS-041 Standalone AD Subsystem
HARC-003 IDPS-ESCAPE context
MRS-042 SONAR Production Anomaly Detection System
TST-041 Setup RADAR foundation
TRP-030 TCER: Setup RADAR foundation